From c411e1255539f339306628901645122d07f60fb8 Mon Sep 17 00:00:00 2001 From: Alexei Znamensky <103110+russoz@users.noreply.github.com> Date: Mon, 1 May 2023 20:31:34 +1200 Subject: [PATCH] Setup docker (#6396) * setup-docker: install and run docker inside integration test VMs * must pip install requests to satisfy community.docker requirements * add Ubuntu configuration to setup_docker * Update tests/integration/targets/mssql_script/tasks/main.yml * Update tests/integration/targets/mssql_script/tasks/main.yml * docker_pacakges variable non-existent by default * add setup_docker to keycloak_groups * add setup_docker to keycloak_groups * removed unused file tasks/nothing.yml * add README * add copyright notice to readme file * Update tests/integration/targets/setup_docker/README.md * rolled back the boilerplate disclaimer to mssql_script tasks/main.yml --- .../targets/keycloak_group/meta/main.yml | 7 ++ .../targets/keycloak_group/tasks/main.yml | 26 +++++++ .../integration/targets/mssql_script/aliases | 1 + .../targets/mssql_script/defaults/main.yml | 4 +- .../targets/mssql_script/meta/main.yml | 7 ++ .../targets/mssql_script/tasks/main.yml | 30 ++++++-- .../targets/setup_docker/README.md | 73 +++++++++++++++++++ .../integration/targets/setup_docker/aliases | 5 ++ .../targets/setup_docker/defaults/main.yml | 14 ++++ .../targets/setup_docker/handlers/main.yml | 19 +++++ .../targets/setup_docker/meta/main.yml | 7 ++ .../targets/setup_docker/tasks/D-Fedora.yml | 33 +++++++++ .../targets/setup_docker/tasks/default.yml | 21 ++++++ .../targets/setup_docker/tasks/main.yml | 55 ++++++++++++++ .../targets/setup_docker/vars/D-Fedora.yml | 10 +++ .../targets/setup_docker/vars/D-Ubuntu.yml | 7 ++ tests/requirements.yml | 1 + tests/utils/shippable/shippable.sh | 1 + 18 files changed, 313 insertions(+), 8 deletions(-) create mode 100644 tests/integration/targets/keycloak_group/meta/main.yml create mode 100644 tests/integration/targets/mssql_script/meta/main.yml create mode 100644 tests/integration/targets/setup_docker/README.md create mode 100644 tests/integration/targets/setup_docker/aliases create mode 100644 tests/integration/targets/setup_docker/defaults/main.yml create mode 100644 tests/integration/targets/setup_docker/handlers/main.yml create mode 100644 tests/integration/targets/setup_docker/meta/main.yml create mode 100644 tests/integration/targets/setup_docker/tasks/D-Fedora.yml create mode 100644 tests/integration/targets/setup_docker/tasks/default.yml create mode 100644 tests/integration/targets/setup_docker/tasks/main.yml create mode 100644 tests/integration/targets/setup_docker/vars/D-Fedora.yml create mode 100644 tests/integration/targets/setup_docker/vars/D-Ubuntu.yml diff --git a/tests/integration/targets/keycloak_group/meta/main.yml b/tests/integration/targets/keycloak_group/meta/main.yml new file mode 100644 index 0000000000..5769ff1cb3 --- /dev/null +++ b/tests/integration/targets/keycloak_group/meta/main.yml @@ -0,0 +1,7 @@ +--- +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +dependencies: + - setup_docker diff --git a/tests/integration/targets/keycloak_group/tasks/main.yml b/tests/integration/targets/keycloak_group/tasks/main.yml index 50e61bab0f..8b115e3a28 100644 --- a/tests/integration/targets/keycloak_group/tasks/main.yml +++ b/tests/integration/targets/keycloak_group/tasks/main.yml @@ -3,6 +3,29 @@ # GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) # SPDX-License-Identifier: GPL-3.0-or-later +- name: Start container + community.docker.docker_container: + name: mykeycloak + image: "quay.io/keycloak/keycloak:20.0.2" + command: start-dev + env: + KC_HTTP_RELATIVE_PATH: /auth + KEYCLOAK_ADMIN: admin + KEYCLOAK_ADMIN_PASSWORD: password + ports: + - "8080:8080" + detach: true + auto_remove: true + memory: 2200M + +- name: Check default ports + ansible.builtin.wait_for: + host: "localhost" + port: "8080" + state: started # Port should be open + delay: 30 # Wait before first check + timeout: 50 # Stop checking after timeout (sec) + - name: Create a keycloak group community.general.keycloak_group: auth_keycloak_url: "{{ url }}" @@ -13,6 +36,9 @@ name: test-group state: present register: result + retries: 3 + delay: 20 + until: result is not failed - name: Assert group was created assert: diff --git a/tests/integration/targets/mssql_script/aliases b/tests/integration/targets/mssql_script/aliases index ee4e2125f9..023e2edce5 100644 --- a/tests/integration/targets/mssql_script/aliases +++ b/tests/integration/targets/mssql_script/aliases @@ -7,3 +7,4 @@ skip/macos skip/freebsd skip/rhel disabled +destructive diff --git a/tests/integration/targets/mssql_script/defaults/main.yml b/tests/integration/targets/mssql_script/defaults/main.yml index 42ad1d44b8..d1ca77f55d 100644 --- a/tests/integration/targets/mssql_script/defaults/main.yml +++ b/tests/integration/targets/mssql_script/defaults/main.yml @@ -4,6 +4,6 @@ # SPDX-License-Identifier: GPL-3.0-or-later mssql_host: localhost -mssql_port: 14330 +mssql_port: 1433 mssql_login_user: sa -mssql_login_password: "yourStrong(!)Password" +mssql_login_password: "Abcd!234" diff --git a/tests/integration/targets/mssql_script/meta/main.yml b/tests/integration/targets/mssql_script/meta/main.yml new file mode 100644 index 0000000000..5769ff1cb3 --- /dev/null +++ b/tests/integration/targets/mssql_script/meta/main.yml @@ -0,0 +1,7 @@ +--- +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +dependencies: + - setup_docker diff --git a/tests/integration/targets/mssql_script/tasks/main.yml b/tests/integration/targets/mssql_script/tasks/main.yml index 7f8d6d1840..6fa4d35014 100644 --- a/tests/integration/targets/mssql_script/tasks/main.yml +++ b/tests/integration/targets/mssql_script/tasks/main.yml @@ -13,13 +13,33 @@ # docker run --name mssql-test -e "ACCEPT_EULA=Y" -e 'SA_PASSWORD={{ mssql_login_password }}' -p "{ mssql_port }"0:"{ mssql_port }" -d mcr.microsoft.com/mssql/server:2019-latest # ansible-test integration mssql_script -v --allow-disabled +- name: Install pymssql + ansible.builtin.pip: + name: + - pymssql + state: present + +- name: Start container + community.docker.docker_container: + name: mssql-test + image: "mcr.microsoft.com/mssql/server:2019-latest" + env: + ACCEPT_EULA: "Y" + SA_PASSWORD: "{{ mssql_login_password }}" + MSSQL_PID: Developer + ports: + - "{{ mssql_port }}:1433" + detach: true + auto_remove: true + memory: 2200M + - name: Check default ports - wait_for: + ansible.builtin.wait_for: host: "{{ mssql_host }}" port: "{{ mssql_port }}" state: started # Port should be open - delay: 0 # No wait before first check (sec) - timeout: 3 # Stop checking after timeout (sec) + delay: 10 # Wait 10 secs before first check + timeout: 30 # Stop checking after timeout (sec) - name: Check DB connection community.general.mssql_script: @@ -41,7 +61,7 @@ GO SELECT 'Batch 1 - Select 0' register: result_batches -# "result_batches.query_results": +# "result_batches.query_results": # [ # batches # [ # selects # [ # Rows @@ -115,8 +135,6 @@ - result_batches_dict.query_results_dict[0][0] | length == 1 # one row in first select - result_batches_dict.query_results_dict[0][0][0]['b0s0'] == 'Batch 0 - Select 0' # column 'b0s0' of first row - - - name: Stored procedure may return multiple result sets community.general.mssql_script: login_user: "{{ mssql_login_user }}" diff --git a/tests/integration/targets/setup_docker/README.md b/tests/integration/targets/setup_docker/README.md new file mode 100644 index 0000000000..f2f26b7ccd --- /dev/null +++ b/tests/integration/targets/setup_docker/README.md @@ -0,0 +1,73 @@ + + +Setup Docker +============ + +This role provides a mechanism to install docker automatically within the context of an integration test. + +For the time being (Apr 2023) it has been tested in Fedora 37 and Ubuntu Jammy. + +This role was largely based on the `setup_snap` one written by @felixfontein. + + +Quickstart +---------- + +Add the file `meta/main.yml` to your integration test target it it does not yet contain one, and add (or update) the `dependencies` block with `setup_docker`, as in: + +```yaml +dependencies: + - setup_docker +``` + +In your integration test target, add to the beginning of the `tasks/main.yml` something like (example from `mssql_script`): + +```yaml +- name: Start container + community.docker.docker_container: + name: mssql-test + image: "mcr.microsoft.com/mssql/server:2019-latest" + env: + ACCEPT_EULA: "Y" + SA_PASSWORD: "{{ mssql_login_password }}" + MSSQL_PID: Developer + ports: + - "{{ mssql_port }}:1433" + detach: true + auto_remove: true + memory: 2200M +``` + +That's it! Your integration test will be using a docker container to support the test. + + +What it does +------------ + +The role will install `docker` on the test target, allowing the test to run a container to support its execution. + +The installation of the package sends a notification to an Ansible handler that will remove `docker` from the system after the integration test target is done. + +This role assumes that developers will use the collection `community.docker` to manage the containers used in the test. To support that assumption, this role will install the `requests` package in the Python runtime environment used, usually a *virtualenv* used for the test. That package is **not removed** from that environment after the test. + +The most common use case is to use `community.docker.docker_container` to start a container, as in the example above. It is likely that `community.docker.docker_compose` can be used as well, although this has **not been tested** yet. + + +Recommendations +--------------- + +* Don't forget to publish the service ports when starting the container +* Take into consideration that the services inside the container will take a while to get started. Use both/either `ansible.builtin.wait_for` to check for the availability of the network port and/or `retries` on the first task effectively using those services +* As a precautionary measure, start using the role in a test that is marked either `disabled` or `unsupported`, and move forward from there. + + +Known Issues & Caveats +---------------------- + +* Support only Ubuntu and Fedora, having been tested in Ubuntu Jammy and Fedora 37, respectively +* Lack mechanism to choose or constraint the `docker` version to be used +* Lack option to prevent `docker` from being removed at the end of the integration test diff --git a/tests/integration/targets/setup_docker/aliases b/tests/integration/targets/setup_docker/aliases new file mode 100644 index 0000000000..0a430dff10 --- /dev/null +++ b/tests/integration/targets/setup_docker/aliases @@ -0,0 +1,5 @@ +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +needs/target/setup_epel diff --git a/tests/integration/targets/setup_docker/defaults/main.yml b/tests/integration/targets/setup_docker/defaults/main.yml new file mode 100644 index 0000000000..55dc6fdb2c --- /dev/null +++ b/tests/integration/targets/setup_docker/defaults/main.yml @@ -0,0 +1,14 @@ +--- +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +distro_lookup_names: + - "D-{{ ansible_facts.distribution }}-{{ ansible_facts.distribution_version }}.yml" + - "D-{{ ansible_facts.distribution }}-{{ ansible_facts.distribution_major_version }}.yml" + - "{{ ansible_facts.os_family }}-{{ ansible_facts.distribution_major_version }}.yml" + - "D-{{ ansible_facts.distribution }}.yml" + - "{{ ansible_facts.os_family }}.yml" + - "default.yml" + +has_docker: false diff --git a/tests/integration/targets/setup_docker/handlers/main.yml b/tests/integration/targets/setup_docker/handlers/main.yml new file mode 100644 index 0000000000..2834967141 --- /dev/null +++ b/tests/integration/targets/setup_docker/handlers/main.yml @@ -0,0 +1,19 @@ +--- +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +- name: Remove Docker packages + package: + name: "{{ docker_packages }}" + state: absent + +- name: "D-Fedora : Remove repository" + file: + path: /etc/yum.repos.d/docker-ce.repo + state: absent + +- name: "D-Fedora : Remove dnf-plugins-core" + package: + name: dnf-plugins-core + state: absent diff --git a/tests/integration/targets/setup_docker/meta/main.yml b/tests/integration/targets/setup_docker/meta/main.yml new file mode 100644 index 0000000000..2fcd152f95 --- /dev/null +++ b/tests/integration/targets/setup_docker/meta/main.yml @@ -0,0 +1,7 @@ +--- +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +dependencies: + - setup_pkg_mgr diff --git a/tests/integration/targets/setup_docker/tasks/D-Fedora.yml b/tests/integration/targets/setup_docker/tasks/D-Fedora.yml new file mode 100644 index 0000000000..80d6e869dd --- /dev/null +++ b/tests/integration/targets/setup_docker/tasks/D-Fedora.yml @@ -0,0 +1,33 @@ +--- +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +# dnf -y install dnf-plugins-core +# dnf config-manager --add-repo https://download.docker.com/linux/fedora/docker-ce.repo +# sudo dnf -y install docker-ce docker-ce-cli containerd.io docker-compose-plugin + +- name: Install dnf-plugins-core + become: true + package: + name: dnf-plugins-core + state: present + notify: "D-Fedora : Remove dnf-plugins-core" + +- name: Add docker repo + become: true + ansible.builtin.command: + cmd: dnf config-manager --add-repo https://download.docker.com/linux/fedora/docker-ce.repo + notify: "D-Fedora : Remove repository" + +- name: Install docker + become: true + package: + name: "{{ item }}" + state: present + loop: "{{ docker_packages }}" + notify: Remove Docker packages + +- name: Inform that docker is installed + set_fact: + has_docker: true diff --git a/tests/integration/targets/setup_docker/tasks/default.yml b/tests/integration/targets/setup_docker/tasks/default.yml new file mode 100644 index 0000000000..a628e074b6 --- /dev/null +++ b/tests/integration/targets/setup_docker/tasks/default.yml @@ -0,0 +1,21 @@ +--- +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +# dnf -y install dnf-plugins-core +# dnf config-manager --add-repo https://download.docker.com/linux/fedora/docker-ce.repo +# sudo dnf -y install docker-ce docker-ce-cli containerd.io docker-compose-plugin + +- name: Install docker + become: true + package: + name: "{{ item }}" + state: present + loop: "{{ docker_packages }}" + notify: + - Remove Docker packages + +- name: Inform that docker is installed + set_fact: + has_docker: true diff --git a/tests/integration/targets/setup_docker/tasks/main.yml b/tests/integration/targets/setup_docker/tasks/main.yml new file mode 100644 index 0000000000..4f41da31a8 --- /dev/null +++ b/tests/integration/targets/setup_docker/tasks/main.yml @@ -0,0 +1,55 @@ +--- +#################################################################### +# WARNING: These are designed specifically for Ansible tests # +# and should not be used as examples of how to write Ansible roles # +#################################################################### + +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +- name: Print information on which we distinguish + debug: + msg: "Distribution '{{ ansible_facts.distribution }}', version '{{ ansible_facts.distribution_version }}', OS family '{{ ansible_facts.os_family }}'" + +- name: Install EPEL repository (RHEL only) + include_role: + name: setup_epel + when: + - ansible_distribution in ['RedHat', 'CentOS'] + - ansible_distribution_major_version is version('9', '<') + +- name: Distribution specific + block: + - name: Include distribution specific vars + include_vars: "{{ lookup('first_found', params) }}" + vars: + params: + files: "{{ distro_lookup_names }}" + paths: + - "{{ role_path }}/vars" + - name: Include distribution specific tasks + include_tasks: "{{ lookup('first_found', params) }}" + vars: + params: + files: "{{ distro_lookup_names }}" + paths: + - "{{ role_path }}/tasks" + +- name: Start docker service + become: true + ansible.builtin.service: + name: docker + state: started + +- name: Cheat on the docker socket permissions + become: true + ansible.builtin.file: + path: /var/run/docker.sock + mode: 0666 + +- name: Install python "requests" + ansible.builtin.pip: + name: + - requests + state: present diff --git a/tests/integration/targets/setup_docker/vars/D-Fedora.yml b/tests/integration/targets/setup_docker/vars/D-Fedora.yml new file mode 100644 index 0000000000..f03626f4a4 --- /dev/null +++ b/tests/integration/targets/setup_docker/vars/D-Fedora.yml @@ -0,0 +1,10 @@ +--- +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +docker_packages: + - docker-ce + - docker-ce-cli + - containerd.io + - docker-compose-plugin diff --git a/tests/integration/targets/setup_docker/vars/D-Ubuntu.yml b/tests/integration/targets/setup_docker/vars/D-Ubuntu.yml new file mode 100644 index 0000000000..260dc1d5e0 --- /dev/null +++ b/tests/integration/targets/setup_docker/vars/D-Ubuntu.yml @@ -0,0 +1,7 @@ +--- +# Copyright (c) Ansible Project +# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt) +# SPDX-License-Identifier: GPL-3.0-or-later + +docker_packages: + - docker.io diff --git a/tests/requirements.yml b/tests/requirements.yml index acad510733..adedb17bda 100644 --- a/tests/requirements.yml +++ b/tests/requirements.yml @@ -6,5 +6,6 @@ integration_tests_dependencies: - ansible.posix - community.crypto +- community.docker unit_tests_dependencies: - community.internal_test_tools diff --git a/tests/utils/shippable/shippable.sh b/tests/utils/shippable/shippable.sh index 4f97771c28..e986804385 100755 --- a/tests/utils/shippable/shippable.sh +++ b/tests/utils/shippable/shippable.sh @@ -85,6 +85,7 @@ if [ "${script}" != "sanity" ] || [ "${test}" == "sanity/extra" ]; then # Nothing further should be added to this list. # This is to prevent modules or plugins in this collection having a runtime dependency on other collections. retry git clone --depth=1 --single-branch https://github.com/ansible-collections/community.internal_test_tools.git "${ANSIBLE_COLLECTIONS_PATHS}/ansible_collections/community/internal_test_tools" + retry git clone --depth=1 --single-branch https://github.com/ansible-collections/community.docker.git "${ANSIBLE_COLLECTIONS_PATHS}/ansible_collections/community/docker" # NOTE: we're installing with git to work around Galaxy being a huge PITA (https://github.com/ansible/galaxy/issues/2429) # retry ansible-galaxy -vvv collection install community.internal_test_tools fi